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DETAILED ACTION 

1. Claims 1-27 are pending. 

Claim Rejections - 35 USC §112 

1. The following is a quotation of the second paragraph of 35 
U.S.C. 112: 

The specification shall conclude with one or more claims particularly 
pointing out and distinctly claiming the subject matter which the applicant 
regards as his invention. 

2. Claims 21-27 are rejected under 35 U.S.C. 112, second 
paragraph, as being indefinite for failing to particularly point 
out and distinctly claim the subject matter which applicant 
regards as the invention. 

3. The term "approximately" in claim 21 is a relative term 
which renders the claim indefinite. The term "approximately" is 
not defined by the claim, the specification does not provide a 
standard for ascertaining the requisite degree, and one of 
ordinary skill in the art would not be reasonably apprised of 
the scope of the invention. 

4. The limitation, "the first and second encryption keys. ..being 
other than modifiable absent erasing thereof by any code other 
than the program code" is unclear, particularly "absent erasing 
thereof". Examiner will assume, for the purposes of this 
examination, that it means the keys are not modifiable by any 
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other code and the only modification the program code can make 
it erasure. 

Claim Rejections - 35 USC § 103 

2. The following is a quotation of 35 U.S.C. 103(a) which 
forms the basis for all obviousness rejections set forth in this 
Office action: 

(a) A patent may not be obtained though the invention is not identically 
disclosed or described as set forth in section 102 of this title, if the 
differences between the subject matter sought to be patented and the prior 
art are such that the subject matter as a whole would have been obvious at 
the time the invention was made to a person having ordinary skill in the 
art to which said subject matter pertains. Patentability shall not be 
negatived by the manner in which the invention was made. 

3. Claims 1-9 and 15-18 are rejected under 35 U.S.C. 103(a) as 
being unpatentable over Schneier (Applied Cryptography) , further 
in view of Arnold (US 6175924) and further in view of Fischer 
(US 6141423) . 

As per claims 1-3 and 15, Schneier discloses a method for 
transferring a key by encrypting the first electronic key using 
a first encryption key of the key provider; transferring the 
encrypted first electronic key from the key provider system to 
the second other system via the information network; and 
decrypting the encrypted first electronic key using the second 
encryption key stored within the first secure module and to 
store the decrypted first electronic key wherein the second 
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encryption key is only for decrypting encrypted electronic keys 
( see section 8.3). 

Schneier fails to disclose the encrypting and decrypting 
being performed in a secure module containing a processor, ROM, 
and the keys being un-modif iable and un-accessible outside of 
the module. 

However, Arnold teaches a secure module components (see 
column 3 lines 48-61) and Fischer teaches the properties of the 
keys (see column 4 line 56 through column 5 line 7) . 

At the time of the invention it would have been obvious to 
a person of ordinary skill in the art to use Arnold's secure 
module with the properties of Fischer in. the key transferring 
system of Schneier. 

Motivation to do so would have been to efficiently execute 
encryption algorithms (see Arnold column 3 lines 48-61) and to 
protect against contamination (see Fischer column 4 line 56 
through column 5 line 7) . 

As per claims 4 and 16-18, the modified Schneier, Arnold 
and Fischer system discloses the processor internal to the 
module accesses the second encryption key only in response, to a 
request from a corresponding secure module (as rejected above 
where it is implied that since the key is only used to encrypt 
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other keys it wouldn't be used unless it is requested and as 
rejected in claims above) . 

As per claims 5-6, the modified Schneier, Arnold and 
Fischer system discloses using asymmetric and symmetric keys 
(see Arnold column 3 lines 48-61). 

As per claims 7-8, the modified Schneier, Arnold and 
Fischer system discloses generating a first electronic key 
within a key-generating processor internal to the key provider 
system within a secure module (see Schneier section 8.3 in the 
secure module of Arnold) . 

As per claim 9, the modified Schneier, Arnold and Fischer 
system discloses the first electronic key is a root key for use 
in at least one of encrypting and decrypting private encryption 
keys (see Schneier section 8.3). 

4. Claims 10-14 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over the modified Schneier, Arnold and Fischer 
system as applied to claims 1, 6 and 15 above, and further in 
view of Spelman et al (US 5680458). 

As per claims 10, the modified Schneier, Arnold and Fischer 
system fails to disclose second and third encryption keys being 
stored . 
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However, Spelman et al teaches such keys (see column 2 
lines 4-17 where the second and third keys are of the plurality 
of keys) . 

At the time of the invention it would have been obvious to 
a person of ordinary skill in the art to store Spelman et al's 
keys in the modified Schneier, Arnold and Fischer system. 

. Motivation to do so would have been to have more than one 
root key (see Spelman et al column 2 lines 4-17) . 

As per claim 11, the modified Schneier, Arnold, Fischer and 
Spelman et al system discloses encrypting a fourth encryption 
key using one of the third encryption key and a key 
corresponding to the third encryption key; transferring the 
encrypted fourth encryption key from the key provider system to 
the second other system via the information network; providing 
the encrypted fourth encryption key to the processor internal to 
the first secure module of the second other system; and, 
executing program code on the processor internal to the first 
secure module to decrypt the encrypted fourth encryption key 
using the third encryption key stored within the memory circuit 
of the first secure module and to store the decrypted fourth 
encryption key within the memory circuit of the first secure 
module at a location corresponding approximately to the location 
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where the second encryption key was stored (see Schneier and 
Arnold as applied to Spelman et al's key). 

As per claim 12-13, the modified Schneier, Arnold, Fischer 
and Spelman et al system discloses replacing the second and 
third keys (see Spelman et al column 2 lines 4-17) and root key 
encrypting keys (see Spelman et al's keys as applied to Schneier 
and Arnold's key exchange system). 

As per claim 14, the modified Schneier, Arnold, Fischer and 
Spelman et al system discloses erasing the second encryption key 
from a first storage area of the memory circuit; and, storing 
the decrypted fourth encryption key within approximately the 
same first storage area of the same memory circuit (see Spelman 
et al column 2 lines 4-17 where it is implied that a replaced 
key is erased) . 

5. Claim 19 is rejected under 35 U.S.C. 103(a) as being 
unpatentable over the modified Schneier, Arnold, and Fischer 
system as applied to claim 18 above, and further in view of 
Easter et al (US 559889) . 

As per claim 19 the modified Schneier, Arnold, and Fischer 
system fails to disclose the module is FIPS 140 compliant. 

However, Easter et al teaches such a compliant module (see 
column 6 lines 13-21), 
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At the time of the invention it would have been obvious to 
a person of ordinary skill in the art to have the module of the 
modified Schneier, Arnold, Fischer system be FIPS 140 compliant. 

Motivation to do so would have been to allow for top 
security (see Easter et al column 6 lines 13-21) . 
6. Claim 20 is rejected under 35 U.S.C. 103(a) as being 
unpatentable over the modified Schneier, Arnold, Fischer and 
Easter et al system as applied to claim 19 above, and further in 
view of Bergum et al (US 5249277). 

As per claim 20, the modified Schneier, Arnold, Fischer and 
Easter et al system fails to disclose a tamper detection circuit 
for erasing every cryptographic key stored within the memory ■ 
circuit in dependence upon a detected attempt to access the 
electronic contents of the module in an unauthorized fashion. 

However, Bergum et al teaches such a method of tamper 
protection (see column 4 lines 7-32) . 

At the time of the invention it would have been obvious to 
a person of ordinary skill in the art to apply this method of 
tamper protection to the modified Schneier, Arnold, Fischer and 
Easter et al system. 

Motivation to do so would have been to provide maximum key 
security (see Bergum et al column 4 lines 7-32) . 
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5. Claims 21-24 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over the modified Schneier, Arnold, Fischer and 
Spelman et al system as applied to claim 10 above, and further 
in view of Mason et al (US 6331784) . 

As per claims 21-24 the modified Schneier, Arnold, Fischer 
and Spelman et al system discloses the claimed limitations as in 
claim 10 above, but fails to disclose the keys only being 
erasable by the program code. 

However, Mason et al teaches a system with an erase only 
mode (see column 2 lines 39-47). 

At the time of the invention it would have been obvious to 
a person of ordinary skill in the art to incorporate Mason et : 
al's erase only mode in the modified Schneier, Arnold, Fischer 
and Spelman et al system. 

Motivation to do so would have been so no information can 
be read from the device (see Mason et al column 2 lines 39-47) . 
7. Claim 25 is rejected under 35 U.S.C. 103(a) as being 
unpatentable over the modified Schneier, Arnold, Fischer, 
Spelman et al, and Mason et al system as applied to claim 24 
above, and further in view of Ehrsam et al (US 4386234). 

As per claim 25, the modified Schneier, Arnold, Fischer, 
Spelman et al, and Mason et al system fails to disclose the 
substantially non-volatile reprogrammable memory circuit is one 
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of an electrically erasable read-only memory circuit and a 
random access memory circuit having an on-board power supply in 
the form of a battery. However, Ehrsam et al teaches such a 
memory having a battery (see column 13 lines 45-50) . 

At the time of the invention it would have been obvious to 
a person of ordinary skill in the art to use Ehrsam et al's 
battery powered memory in the modified Schneier, Arnold, 
Fischer, Spelman et al, and Mason et al key exchange system. 

Motivation to do so would have been to enable key retention 
when terminal power may not be present (see Ehrsam et al column 
13 lines 45-50) . : -j 

8. Claim 26 is rejected under 35 U.S.C. 103(a) :as being 
unpatentable over the modified Schneier, Arnold, Fischer, 
Spelman et al, Mason et al, and Ehrsam et al system as applied 
to claim 25 above, and further in view of Easter et al (US 
559889) . 

As per claim 26 the modified Schneier, Arnold, Fischer, 
Spelman et al, Mason et al, and Ehrsam et al system fails to 
disclose the module is FIPS 140 compliant. 

However, Easter et al teaches such a compliant module (see 
column 6 lines 13-21) . At the time of the invention it would 
have been obvious to a person of ordinary skill in the art to 
have the module of the modified Schneier, Arnold, Fischer, 
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Spelman et al, Mason et al, and Ehrsam et al system be FIPS 140 
compliant. Motivation to do so would have been to allow for top 
security (see Easter et al column 6 lines 13-21). 
9. Claim 27 is rejected under 35 U.S.C. 103(a) as being 
unpatentable over the modified Schneier, Arnold, Fischer, 
Spelman et al, Mason et al, Ehrsam et al, and Easter system as 
applied to claim 26 above, and further in view of Bergum et al 
(US 5249277) . 

As per claim 27, the modified Schneier, Arnold, Fischer, 
Spelman et al, Mason et al, Ehrsam et al, and Easter system 
fails to disclose a tamper detection circuit for erasing every 
cryptographic key stored within the memory circuit in dependence 
upon a detected attempt to access the electronic contents of the 
module in an unauthorized fashion. However, Bergum et al 
teaches such a method of tamper protection (see column 4 lines 
7-32) . 

At the time of the invention it would have been obvious to 
a person of ordinary skill in the art to apply this method of 
tamper protection to the modified Schneier, Arnold, Spelman et 
al, Ehrsam et al, and Easter et al system. 

Motivation to do so would have been to provide maximum key 
security (see Bergum et al column 4 lines 7-32) . 
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Conclusion 



Any inquiry concerning this communication or earlier 
communications from the examiner should be directed to Michael 
Pyzocha whose telephone number is (571) 272-3875. The examiner 
can normally be reached on 7:00am - 4:30pm first Fridays of the 
bi-week off. 

If attempts to reach the examiner by telephone are 
unsuccessful, the examiner's supervisor, Emmanuel Moise can be 
reached on (571) 272-3865. The fax phone number for the 
organization where this application or proceeding is assigned is 
703-872-9306. 

Information regarding the status of an application may be 
obtained from the Patent Application Information Retrieval 
(PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status 
information for unpublished applications is available through 
Private PAIR only. For more information about the PAIR system, 
see http://pair-direct.uspto.gov. Should you have questions on 
access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free) . 
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